51 to 75 of 106 Information Security Jobs in the City of London

International Compliance Operations Engineer Location: London/Hong Kong Responsibilities and Goals: Responsible for ensuring information security compliance during the international business process, including compliance assessments and governance for EU GDPR, US CCPA/CPRA, Singapore PDPA, South Korea PIPA, and other relevant regulations. Manage PIA/DPIA tasks during the product development process for international business, build … of governance plans, and drive their implementation. Monitor the compliance of international business operations, regularly review and update compliance procedures and policies. Support and cooperate with international clients in security audits/assessments, managing and responding to both internal and external security compliance audits for international business. Requirements: Bachelor’s or Master's degree in Information Security, Law, Computer Science, or related fields. Fluent in English, with the ability to use it as a working language. At least 3-5 years of experience in information security compliance, risk management, or related fields, with experience in international e-commerce or cloud business information security compliance. In-depth knowledge of international information security More ❯

31.07.2025 Job Description: Summary of Position: This position reports directly to the global CISO and manages a small in-house team responsible for planning, scheduling, monitoring, and reporting on information/cyber security activities. The role collaborates with IT, Group Risk and Compliance, HR, Facilities, and third parties. Key Responsibilities & Accountabilities: Support the Global CISO in maintaining and … executing the cyber security strategy. Take overall responsibility for information security risk and compliance. Manage the BMS Information Security Control Framework. Develop and maintain the Information Security governance and oversight target operating model. Create policies and governance materials. Own the Information Security Risk management processes. Identify security threats and collaborate … with technical teams on exposure. Provide security expertise to IT and business operations. Ensure security initiatives are current and risks are managed. Investigate and review security breaches, including near misses, and recommend improvements. Build relationships with internal users, managers, and external vendors. Coordinate security plans with third-party vendors and ensure proper action on security More ❯

position will report directly to the global CISO and also be responsible for managing a small in-house team who plan, schedule, monitor and report on activities relating to information/cyber security. The role will work in collaboration with Information Technology, Group Risk and Compliance, HR, Facilities and a number of third parties. Key Responsibilities & Accountabilities: Support … the Global CISO in maintaining and realising the cyber security strategy Take overall responsibility of information security risk and compliance Assume responsibility for the BMS Information Security Control Framework Produce and maintain a the Information Security governance and oversight target operating model Produce policies and supporting governance material Take ownership for the Information Security Risk management processes Identify information security threats and work with technical teams to understand BMS exposure Provide specialist Information Security input to IT and business operations Ensure information security initiatives are up to date and security risks are identified and managed Investigate, analyse, and review Information Security breaches More ❯

join our client. This role focuses on Meraki Enterprise, Palo Alto Firewalls, and a mix of physical and cloud environments across multiple sites. You will drive innovation, enhance network security, and automate processes, all while contributing to professional growth and organisational transformation. Key Responsibilities: Design, implement, and maintain network infrastructure across multiple locations and cloud platforms (Azure) Manage Meraki … Alto Firewalls Implement network security measures, including ACLs, DDoS protection, and firewalls Automate network tasks for increased efficiency Troubleshoot and resolve network issues, driving incident resolution Collaborate with InfoSec and Security teams to ensure robust security Monitor network performance and optimise capacity planning Provide network expertise for internal and external projects Skills & Experience: Experience with Meraki, Palo More ❯

balance between business drivers and purity of design Where required facilitate and develop Pocks to demonstrate new concepts or technology choices Work closely with group functions such as infrastructure, information security building relationships and becoming a trusted point of contact Prior experience of BPM Implementation is hugely advantageous Qualifications Degree qualified in a science or IT based discipline … in distributed highly resilient environments (Microservices Architecture/EDD-Event Driven Architecture/SOA/DDD-Doman Driven Design) Significant experience of integrating enterprise application solutions Significant understanding of information security concerns and best practices Cloud solution design and architecture – both native and IaaS ideally on AWS Experience in handling design dependencies on a highly complicated matrix structured More ❯

own the roadmap for SOC2 Type 1 and Type 2 accreditation, work closely with our ISO 27001-certified compliance team, and partner with engineering, product, and leadership to embed security and trust into our growth story. Key Responsibilities Drive SOC 2 Type I and II delivery: Take ownership of the full … SOC 2 compliance lifecycle — using the existing gap analysis to coordinate readiness activities, support remediation efforts, and manage the audit process through to successful certification. Work within an established InfoSec framework: Leverage our existing ISO 27001 controls, policies, and documentation to align with SOC 2 Trust Services Criteria (TSC), ensuring consistency and avoiding duplication of effort. Bridge gaps against SOC … leading SOC 2 Type I and II audits for SaaS platforms Experience driving compliance in startup or early-stage SaaS environments Ability to operate independently while aligning with broader InfoSec strategy Strong knowledge of SOC 2 Trust Services Criteria and control frameworks Hands-on experience with ISO 27001 (with the ability to align and map controls) Familiarity with cloud-native More ❯

O365, Teams, virtualization, and enterprise applications Build and configure user systems, manage Active Directory, and maintain critical IT infrastructure Collaborate with our managed service provider on exciting projects spanning security, networking, and system optimization Develop your skills across telephony, video conferencing, and social media management Contribute to our knowledge base and help shape IT processes that drive business success … What We're Looking For: 2+ years of hands-on IT support experience with multiple operating systems and devices Strong background in Windows Server tools, networking concepts, and information security Experience with telephony/VOIP systems and supporting remote users Proficiency in Adobe Creative Suite, SharePoint, and social media platforms Self-motivated professional who thrives under pressure and More ❯

O365, Teams, virtualization, and enterprise applications Build and configure user systems, manage Active Directory, and maintain critical IT infrastructure Collaborate with our managed service provider on exciting projects spanning security, networking, and system optimization Develop your skills across telephony, video conferencing, and social media management Contribute to our knowledge base and help shape IT processes that drive business success … What We're Looking For: 2+ years of hands-on IT support experience with multiple operating systems and devices Strong background in Windows Server tools, networking concepts, and information security Experience with telephony/VOIP systems and supporting remote users Proficiency in Adobe Creative Suite, SharePoint, and social media platforms Self-motivated professional who thrives under pressure and More ❯

function to ensure compliance with Group-wide frameworks and policies Driving business unit uplift and implementation of key programs, including in relation to regulatory change, business continuity and resilience, information and records management, information security, and cyber risk management Role-modeling best practice risk management culture and capability Promote a strong risk culture and risk ownership at … like to hear from you! We’re also proud to be globally recognised as a WORK180 Endorsed Employer that promotes and supports all women in the workplace. For more information about what we do, our people and values, please visit our website - ************************************************************** #J-18808-Ljbffr More ❯

effort estimation Escalating project risks when needed and supporting mitigation planning Promoting a culture of continuous improvement across processes and documentation standards Ensuring all activity is aligned with our Information Security Management Systems (ISMS) Who you are: You’re someone who brings clarity to complexity. You know how to make sense of technical detail and communicate it in More ❯

effort estimation Escalating project risks when needed and supporting mitigation planning Promoting a culture of continuous improvement across processes and documentation standards Ensuring all activity is aligned with our Information Security Management Systems (ISMS) Who you are: You’re someone who brings clarity to complexity. You know how to make sense of technical detail and communicate it in More ❯

The Information Security Manager will oversee and enhance the organisation's information security framework, ensuring compliance with industry standards and safeguarding sensitive data. This role offers an exciting opportunity to make a meaningful contribution within the not-for-profit sector. Client Details My client is a housing group, it is committed to leveraging technology to support … its mission while maintaining a secure and reliable digital environment. Description Develop and maintain the organisation's information security policies and procedures. Ensure compliance with relevant regulatory and industry standards. Conduct risk assessments to identify and address potential security threats. Collaborate with the Technology team to implement security controls and solutions. Provide training and guidance on … security best practices to employees. Monitor and report on the effectiveness of security measures and systems. Work with external partners to carry out audits and maintain certifications. Profile A strong understanding of information security frameworks and standards such as ISO 27001, NIST, PCI-DSS Demonstrated experience in risk management includes developing related strategies, action plans Proven More ❯

a housing group, it is committed to leveraging technology to support its mission while maintaining a secure and reliable digital environment. Job Description Develop and maintain the organisation's information security policies and procedures. Ensure compliance with relevant regulatory and industry standards. Conduct risk assessments to identify and address potential security threats. Collaborate with the Technology team … to implement security controls and solutions. Provide training and guidance on security best practices to employees. Monitor and report on the effectiveness of security measures and systems. Work with external partners to carry out audits and maintain certifications. The Successful Applicant A strong understanding of information security frameworks and standards such as ISO 27001, NIST … PCI-DSS Demonstrated experience in risk management includes developing related strategies, action plans Proven ability to work collaboratively across departments. Relevant certifications in information security or equivalent professional qualifications What's on Offer Yearly bonus Generous pension scheme. Life assurance coverage Support for professional development. Primarily remote working with occasional commuting to London #J-18808-Ljbffr More ❯

Sterlings is partnered with a Financial Markets Infrastructure firm as they look to expand their Information Security team in London. This is a Project Management/Delivery position overseeing a book of work focused on Cyber initiatives with key IAM and Security maturity deliverables on the horizon. They require a person who has end-to-end Project … be working in a high-performing Cyber group that consists of Architects, Engineers, Penetration Testers, SOC & Cyber Risk professionals - it's a dynamic, fast-paced environment that prioritizes a Security-first approach to its infrastructure and application development environment. The organization operates a 3-day in-office working policy Key Requirements: Experience in delivering complex, multi-workstream security-oriented projects. Proven track record in the financial sector or other regulated industries. Strong understanding of cyber security practices and tools. Experience with project delivery methodologies. Experience managing teams and working in matrix environments. More ❯

Social network you want to login/join with: Cyber Security Engineer, London (City of London) Client: ApTask Location: London (City of London), United Kingdom Job Category: Other EU work permit required: Yes Job Views: 3 Posted: 16.06.2025 Expiry Date: 31.07.2025 Job Description: Job Description As a Senior Engineer - Threat Modelling, you will be part of a cross-functional … team delivering digital business transformation solutions. This role focuses on Security Architecture and Threat Modelling, including governance, evaluation of public cloud services, and security reviews for Public Cloud Providers. Collaboration with Engineering, Information Security, Program Management, and Development teams is essential. You will conduct technical architecture reviews to identify security opportunities, threats, and mitigation strategies. … deadlines Provide feedback to improve threat modeling processes Present findings to leadership and stakeholders Qualifications Ideal candidates will have 8+ years in cybersecurity and related technologies, including: Knowledge of security architecture principles and frameworks Experience with threat modeling methodologies like MITRE ATT&CK, STRIDE, PASTA Over 5 years of cybersecurity experience Expertise in authentication, authorization, logging, encryption, infrastructure security More ❯

Modelling you will be a part of a smart cross-functional team delivering digital business transformation solutions to our clients. This position entails an individual contributor role focused on Security Architecture and Threat Modelling, encompassing governance, evaluation of public cloud services, and conducting security reviews for Public Cloud Providers. Collaboration and partnership with Engineering, Information Security, Program Management, and Development teams are essential. The candidate will conduct technical architecture reviews to pinpoint security opportunities, identify exploitable threats, and propose mitigation strategies. Your Impact •Conduct thorough threat modeling exercises utilizing established methodologies and frameworks •Maintain a rigorous standard of excellence in identifying potential threats and specifying effective mitigation controls. •Manage the lifecycle of identified threats … technical stakeholders. Qualifications We are seeking an ideal candidate with 8+ years of experience in a range of technologies and processes including: •Proficiency in GCP - essential •Strong knowledge of security architecture principles, frameworks, and best practices •Experience working with threat modeling methodologies such as MITRE ATT&CK, STRIDE, PASTA etc. •Overall experience in Cybersecurity: 5+ years •Security practices More ❯

Network Engineer Based in London, UK and reporting to the Global Head of IT Operations & Chief Information Security Officer, this newly created role will be a versatile and detail-oriented Network Engineer who will manage and support enterprise networking infrastructure with additional exposure to SAN storage technologies, particularly NetApp. The ideal candidate will have experience with routing and … switching technologies, firewall management, and storage networking in complex enterprise environments. This role plays a key part in maintaining network performance, security, and reliability including: Network Infrastructure Management Routing & Protocols Security and Access Control Storage Networking (SAN) Project Implementation Collaborate with infrastructure and systems teams to plan and implement network upgrades, expansions, and migrations Provide support for cloud More ❯

Responsibilities Plan, research, and execute testing of computer systems and applications to simulate real-world attacks on Microsoft’s services and infrastructure. Assess existing security capabilities to detect and respond to emerging threats. Outline and document risk impacts in executive summary reports and communicate findings to relevant stakeholders. Perform research to stay current with penetration testing tools, methodologies, tactics … engagements, including Purple Team exercises where we emulate real-world adversaries. Develop and maintain penetration testing procedures and methodologies. Conduct research to remain updated with the latest in application security, both offensive and defensive techniques, and share findings within the Microsoft Security Community. Qualifications Experience in identifying security vulnerabilities, software development lifecycle, large-scale computing, modeling, cyber … security, and anomaly detection. Experience with penetration testing/red-teaming, cloud, services, and network security. Strong coding skills in languages such as C#, Python, C++, Go, PowerShell, ASP.NET, JavaScript. Preferred: Master’s degree in computer science, software engineering, information security, or equivalent work experience. Certifications such as GPEN, GWAPT, GXPN, OSCP, OSCE, or similar. Proven ability More ❯

Inside IR35 About the Role We are seeking a seasoned Network Manager to lead our Global Network Services team. This role is critical in shaping the strategy, governance, and security of our network infrastructure across the UK, EMEA and the US. You will oversee a team of 10+ engineers, manage vendor relationships, and ensure the delivery of secure, scalable … high-performing network services. Key Responsibilities Define and implement the network strategy and governance framework. Lead the deployment and management of network security controls in collaboration with the InfoSec team. Conduct periodic risk reviews to ensure alignment with security baselines. Oversee the design and deployment of Arista spine-leaf architecture in greenfield data centers. Manage Juniper router deployments More ❯

personal assistant support (including drafting correspondence, attending meetings, and taking minutes as required) Undertaking Account Executive support tasks for the CEO. Assisting with Compliance tasks as required ISO 27001 Information Security Responsibilities: Complying with our Leadscale Engine ISO 27001 ISMS and related policies. Reporting information security vulnerabilities, events, and incidents in line with the ISMS incident … handle a variety of tasks in a fast-paced environment. You will need to be comfortable balancing multiple tasks and priorities. Demonstrable trustworthiness with the ability to handle sensitive information with discretion and maintain confidentiality. Excellent written and verbal communication in English. Power user of the Microsoft Office suite Methodical with good attention to detail and problem-solving abilities. More ❯

all employees within the London office and support for remote users in the Middle East and Ireland * Operating the helpdesk ticketing system, receiving and logging user requests and relaying information to those responsible for action, including monitoring logged requests until completion * Providing IT and AV support to high profile clients and meetings * Deployment and administration of hardware, software and … years' experience providing support in an IT environment * Excellent Microsoft Office skills: formatting of Word documents, understanding of Excel formulas and data visualisation * Understanding of data protection and information security requirements * Excellent interpersonal and communication skills - articulate and confident, with the ability to assist users of all technical abilities and demonstrate a willingness to learn new technologies * Possess More ❯

platform projects. Collaborate with the business and IT stakeholders to align infrastructure and platform strategy with organisational goals. Ensure all services are secure by design, working closely with the information security team to proactively manage risks. Drive service improvement and operational resilience through automation, observability, and DevOps best practices. Experience Required: Proven experience in leading platform/infrastructure More ❯

Microsoft 365; Windows and Mac endpoint devices; Android and iPhone mobile devices Competency in Microsoft applications: Word, Excel, PowerPoint, Teams, OneDrive, SharePoint, and Outlook Fundamental understanding of networking and information security principles. What will you be doing? Being first point of contact for all tech support queries via e-mail, phone or messages. Identifying users’ needs and solve More ❯

future opportunities and profitability. Develop and grow client relationship with focus on customer retention, satisfaction and quality of works. Adhering to compliance requirements for Health and Safety, Environmental, Quality, Information Security and Data Protection relevant to your job, function and location. Qualifications For development purposes the following knowledge, skills and experience are required. Demonstrable and previous large scale More ❯

effort estimation Escalating project risks when needed and supporting mitigation planning Promoting a culture of continuous improvement across processes and documentation standards Ensuring all activity is aligned with our Information Security Management Systems (ISMS) This is a hybrid role - 2 days a week in our London office, plus ad-hoc client meetings Who you are: Youre someone who More ❯